Lucene search
MitreCVE-2006-0881HistoryFeb 24, 2006 - 11:02 a.m.
CVE-2006-0881
2006-02-2411:02:00
mitre
web.nvd.nist.gov
27
cve-2006-0881
php
remote file include
gorumlib.php
noah's classifieds
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.099
Percentile
94.9%
Multiple PHP remote file include vulnerabilities in gorum/gorumlib.php in Noah’s Classifieds 1.3, when register_globals is enabled, allow remote attackers to include arbitrary PHP files via the (1) upperTemplate and (2) lowerTemplate parameters, as demonstrated using the lowerTemplate parameter to index.php.
Affected configurations
Node
phpoutsourcingnoahs_classifiedsMatch1.2
ORphpoutsourcingnoahs_classifiedsMatch1.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpoutsourcing | noahs_classifieds | 1.2 | cpe:2.3:a:phpoutsourcing:noahs_classifieds:1.2:*:*:*:*:*:*:* |
| phpoutsourcing | noahs_classifieds | 1.3 | cpe:2.3:a:phpoutsourcing:noahs_classifieds:1.3:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
nvd
nvd
CVE-2006-0881
2006-02-24 11:02:00
prion
prion
Remote file inclusion
2006-02-24 11:02:00
cvelist
cvelist
CVE-2006-0881
2006-02-24 11:00:00
nessus
nessus
Noah's Classifieds <= 1.3 Multiple Vulnerabilities
2006-02-23 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.099
Percentile
94.9%
Related for CVE-2006-0881